Disable SSL2 and SSL3 in ssl.el?

Friday, 21 November 2014

        Hi all,

I'm sure you're all aware of the recent security flaws exposed with SSL3.

Therefore I have to ask, should we disable SSL2 and SSL3 support in ssl.el?

A little bit of reading shows that we can probably do this by adding
-no_ssl2 and -no_ssl3 to the ssl-program-arguments in ssl.el.  I have
not tested it yet.

Are there other SSL interfaces exposed on the lisp level?

Johann

_______________________________________________
XEmacs-Beta mailing list
XEmacs-Beta(a)xemacs.org
http://lists.xemacs.org/mailman/listinfo/xemacs-beta

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

2003

2002

2001

2000

1999

1998

Disable SSL2 and SSL3 in ssl.el?